Claudiu Teodorescu is a reverse engineer in the FireEye Labs Advanced Reverse Engineering (FLARE) Team. Prior to joining FireEye, Claudiu worked for Guidance Software, writing forensic parsers for different file formats to support the EnCase forensic tool. Also, as the Cryptographic Officer of the company, he supported EnCase integration with different disk/volume/file based encryption products including Bitlocker, McAfee EEPC, Checkpoint FDE, Symantec EEPC, etc.
WhyMI so Sexy? WMI Attacks, Real-Time Defense, and Advanced Forensic Analysis